#########################
key认证:
dnssec-keygen -a HMAC-MD5 -b 128 -n HOST westos
##加密方式HMAC-MD5,长度为128,生成两个文件.key,.priavate
cp -p /etc/rndc.key /etc/liu.key ##复制模板
vim /etc/liu.key ##编辑文件
添加内容:
key "westos"{
algorithm HMAC-MD5;
secret 密码; ##此处填写的密码,应查看key认证生成的.key文件;
}
vim /etc/named.conf ##在配置文件添加"/etc/liu.key"
修改内容:
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/liu.key";
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
#########################SMTPserver:
yum install bind -y ##下载bind
vim /etc/named.conf ##配置文件
修改内容:
//listen-on port 53 { any; };//allow-query { any; };
//dnssec-validation no;
vim /etc/named.rfc1912.zones ##进行添加内容
zone "liu.com" IN {
type master;
file "liu.com.zone";
allow-update { none; };
};
zone "westos.com" IN {
type master;
file "westos.com.zone";
allow-update { none; };
};
cp liu.com.zone westos.com.zone ##复制模板
vim /var/named/liu.com.zone ##编辑文件,内容如下
$TTL 1D
@ IN SOA dns.liu.com. root.liu.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns
MX 1 mail
dns A 172.25.254.105
mail A 172.25.254.105
www A 172.25.254.105
vim /var/named/westos.com.zone ##编辑文件,内容如下
$TTL 1D
@ IN SOA dns.westos.com. root.westos.com. (
0 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
NS dns
MX 1 mail
dns A 172.25.254.105
mail A 172.25.254.205
www A 172.25.254.105
server:
vim /etc/post../main.cf
75 myhostname = liu.example.com
76 #myhostname = virtual.domain.tld
83 mydomain = liu.com
99 myorigin = $mydomain
113 inet_interfaces = all
114 #inet_interfaces = $myhostname
115 #inet_interfaces = $myhostname, localhost
116 #inet_interfaces = localhost
164 mydestination = $myhostname, $mydomain, localhost
client:
vim /etc/post../main.cf
75 myhostname = westos.example.com
76 #myhostname = virtual.domain.tld
83 mydomain = westos.com
99 myorigin = $mydomain
113 inet_interfaces = all
114 #inet_interfaces = $myhostname
115 #inet_interfaces = $myhostname, localhost
116 #inet_interfaces = localhost
164 mydestination = $myhostname, $mydomain, localhost
systemctl restart postfix.service
systemctl stop firewalld
测试:
dig -t mx liu.com
dig -t mx westos.com
westos端:
mail root@liu.com
‘.’结束发送
mailq
postsuper -d 63C4B2462B7 ##删除未成功发送的
postqueue -f ##刷新重新发送
#########################
邮件别名
westos端:
vim /etc/aliases
G
admin root ##虚拟 真实的
more: :include:/etc/moreusers
vim /etc/moreusers
root
student
postalias /etc/aliases
systemctl restart postfix.service
#########################
出站地址伪装
vim /etc/postfix/generic
root@westos.com 861078673@qq.com
postmap /etc/postfix/generic
postconf -e "smtp_generic_maps =hash:/etc/postfix/generic"
systemctl restart postfix
#########################
[root@foundation5 Desktop]# telnet 172.25.254.105 25
Trying 172.25.254.105...
Connected to 172.25.254.105.
Escape character is '^]'.
220 liu.example.com ESMTP Postfix
ehlo hello
250-liu.example.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
mail from:root@westos.com
250 2.1.0 Ok
rcpt to:root@liu.com
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
jjjj
adfasdf
asdfadf
.
250 2.0.0 Ok: queued as D3E9E24627F
q
502 5.5.2 Error: command not recognized
quit
221 2.0.0 Bye
Connection closed by foreign host.
#######################